64 matches found
EUVD-2016-8644
Malware in sbrugna...
EUVD-2016-8643
Malware in sbrugna...
EUVD-2008-5839
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2016-7794
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sociomantic-tsunami git-hub before 0.10.3 allows remote attackers to execute arbitrary code via a crafted repository name. CVE-2016-7794 Note that Nessus relies...
Linux Distros Unpatched Vulnerability : CVE-2016-7793
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sociomantic-tsunami git-hub before 0.10.3 allows remote attackers to execute arbitrary code via a crafted repository URL. CVE-2016-7793 Note that Nessus relies ...
Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining
The infamous cryptojacking group known as TeamTNT appears to be readying for a new large-scale campaign targeting cloud-native environments for mining cryptocurrencies and renting out breached servers to third-parties. "The group is currently targeting exposed Docker daemons to deploy Sliver...
CVE-2024-6983
creationtimestamp| type| source ---|---|--- 2024-09-27 19:14:37+00:00| seen| https://t.me/cvedetector/6549 2025-02-18 12:07:35+00:00| published-proof-of-concept| https://github.com/google/tsunami-security-scanner-plugins/tree/master/community/detectors/mudlerlocalaicve20246983...
New Linux Malware Campaign Exploits Oracle Weblogic to Mine Cryptocurrency
Cybersecurity researchers have uncovered a new malware campaign targeting Linux environments to conduct illicit cryptocurrency mining and deliver botnet malware. The activity, which specifically singles out the Oracle Weblogic server, is designed to deliver a malware strain dubbed Hadooken,...
CVE-2024-2928
creationtimestamp| type| source ---|---|--- 2024-09-11 17:21:42+00:00| published-proof-of-concept| https://github.com/google/tsunami-security-scanner-plugins/tree/master/community/detectors/mlflowcve20242928 2024-11-08 03:57:04+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/8970...
CVE-2024-3104
creationtimestamp| type| source ---|---|--- 2024-08-14 16:35:18+00:00| published-proof-of-concept| https://github.com/google/tsunami-security-scanner-plugins/tree/master/community/detectors/anythingllmcve20243104...
8220 Gang Exploits Oracle WebLogic Server Flaws for Cryptocurrency Mining
Security researchers have shed more light on the cryptocurrency mining operation conducted by the 8220 Gang by exploiting known security flaws in the Oracle WebLogic Server. "The threat actor employs fileless execution techniques, using DLL reflective and process injection, allowing the malware...
CVE-2024-1728
creationtimestamp| type| source ---|---|--- 2024-04-12 06:48:58+00:00| seen| https://t.me/arpsyndicate/4544 2024-10-09 22:49:03+00:00| published-proof-of-concept| https://t.me/codeb0ss/1613 2025-02-05 16:00:09+00:00| published-proof-of-concept| Telegram/DvuDNxzeYZP63w5nmwzbWYZFvCKfCkB4qbONMONwQIS...
CVE-2024-2029
creationtimestamp| type| source ---|---|--- 2024-04-12 05:26:43+00:00| seen| https://t.me/arpsyndicate/4526 2025-07-21 18:57:10+00:00| published-proof-of-concept| https://github.com/google/tsunami-security-scanner-plugins/tree/master/community/detectors/localaicve20242029...
CVE-2020-17526
creationtimestamp| type| source ---|---|--- 2024-04-06 09:56:09+00:00| published-proof-of-concept| https://github.com/google/tsunami-security-scanner-plugins/tree/master/community/detectors/apacheairflowcve202017526...
CVE-2023-6014
creationtimestamp| type| source ---|---|--- 2024-03-27 16:42:02+00:00| published-proof-of-concept| https://github.com/google/tsunami-security-scanner-plugins/tree/master/community/detectors/mlflowcve20236014...
CVE-2023-51449
creationtimestamp| type| source ---|---|--- 2023-12-22 22:22:12+00:00| seen| https://t.me/ctinow/158638 2024-01-18 08:11:50+00:00| seen| https://t.me/ctinow/169610 2024-04-01 13:07:17+00:00| published-proof-of-concept|...
TeamTNT's Silentbob Botnet Infecting 196 Hosts in Cloud Attack Campaign
As many as 196 hosts have been infected as part of an aggressive cloud campaign mounted by the TeamTNT group called Silentbob. "The botnet run by TeamTNT has set its sights on Docker and Kubernetes environments, Redis servers, Postgres databases, Hadoop clusters, Tomcat and Nginx servers, Weave...
Silentbob Campaign: Cloud-Native Environments Under Attack
Cybersecurity researchers have unearthed an attack infrastructure that's being used as part of a "potentially massive campaign" against cloud-native environments. "This infrastructure is in early stages of testing and deployment, and is mainly consistent of an aggressive cloud worm, designed to...
Silentbob Campaign: Cloud-Native Environments Under Attack
Cybersecurity researchers have unearthed an attack infrastructure that's being used as part of a "potentially massive campaign" against cloud-native environments. "This infrastructure is in early stages of testing and deployment, and is mainly consistent of an aggressive cloud worm, designed to...
New Cryptocurrency Mining Campaign Targets Linux Systems and IoT Devices
Internet-facing Linux systems and Internet of Things IoT devices are being targeted as part of a new campaign designed to illicitly mine cryptocurrency. "The threat actors behind the attack use a backdoor that deploys a wide array of tools and components such as rootkits and an IRC bot to steal...